Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3995 matches found

SUSE CVE
SUSE CVEadded 2025/03/08 2:50 a.m.1 views

SUSE CVE-2025-21839

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core .vcpurun loop to fix a bug where KVM can load hardware with a stale...

5.5CVSS6.6AI score0.00025EPSS
Exploits0References21
OSV
OSVadded 2025/03/07 9:15 a.m.2 views

UBUNTU-CVE-2025-21839

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core .vcpurun loop to fix a bug where KVM can load hardware with a stale...

5.5CVSS6.2AI score0.00025EPSS
Exploits0References25
OSV
OSVadded 2025/03/07 9:9 a.m.9 views

CVE-2025-21839 KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Load DR6 with guest value only before entering .vcpurun loop Move the conditional loading of hardware DR6 with the guest's DR6 value out of the core .vcpurun loop to fix a bug where KVM can load hardware with a stale...

5.5CVSS6AI score0.00025EPSS
Exploits0References10
Amazon
Amazonadded 2025/03/06 12:0 a.m.2 views

Important: amazon-cloudwatch-agent

Issue Overview: Calling any of the Parse functions on Go source code which contains deeply nested literals can cause a panic due to stack exhaustion. CVE-2024-34155 Calling Decoder.Decode on a message which contains deeply nested structures can cause a panic due to stack exhaustion. This is a...

9.1CVSS8AI score0.3863EPSS
Exploits2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-50115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE...

7.1CVSS6.7AI score0.00014EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-42004

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer.deserializeFromArray to prevent use ...

7.5CVSS6.5AI score0.00229EPSS
Exploits1References3
SUSE CVE
SUSE CVEadded 2025/02/27 3:12 a.m.2 views

SUSE CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

3.3CVSS6.5AI score0.0001EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2025/02/26 12:28 p.m.6 views

CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

5.5CVSS6.8AI score0.0001EPSS
Exploits0References4
NVD
NVDadded 2025/02/26 7:1 a.m.7 views

CVE-2022-49559

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 Remove WARNs that sanity check that KVM never lets a triple fault for L2 escape and incorrectly end up in L1. In normal operation, the sanity check is...

5.5CVSS0.00048EPSS
Exploits0References4
OSV
OSVadded 2025/02/26 7:1 a.m.2 views

DEBIAN-CVE-2022-49559

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 Remove WARNs that sanity check that KVM never lets a triple fault for L2 escape and incorrectly end up in L1. In normal operation, the sanity check is...

5.5CVSS5.3AI score0.00048EPSS
Exploits0References1
OSV
OSVadded 2025/02/26 7:1 a.m.0 views

UBUNTU-CVE-2022-49559

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 Remove WARNs that sanity check that KVM never lets a triple fault for L2 escape and incorrectly end up in L1. In normal operation, the sanity check is...

5.5CVSS6AI score0.00048EPSS
Exploits0References7
OSV
OSVadded 2025/02/26 7:0 a.m.3 views

DEBIAN-CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

5.5CVSS5.4AI score0.0001EPSS
Exploits0References1
NVD
NVDadded 2025/02/26 7:0 a.m.6 views

CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

5.5CVSS0.0001EPSS
Exploits0References7
OSV
OSVadded 2025/02/26 7:0 a.m.1 views

UBUNTU-CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

5.5CVSS6.1AI score0.0001EPSS
Exploits0References10
Cvelist
Cvelistadded 2025/02/26 1:54 a.m.12 views

CVE-2022-49086 net: openvswitch: fix leak of nested actions

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

0.0001EPSS
Exploits0References7
CVE
CVEadded 2025/02/26 1:54 a.m.122 views

CVE-2022-49086

CVE-2022-49086 affects the Linux kernel Open vSwitch actions: during parsing user-provided actions, the ovs_openvswitch module can allocate memory and leak it when destroying actions due to nested actions not being freed. The root cause is that several actions can hold nested lists of actions and...

5.5CVSS6.5AI score0.0001EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVEadded 2025/02/26 1:54 a.m.7 views

CVE-2022-49086

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing user-provided actions, openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. So this memory has to be freed while...

5.5CVSS5.4AI score0.0001EPSS
Exploits0
CNNVD
CNNVDadded 2025/02/26 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from the openvswitch module not freeing memory when handling nested actions, potentially leading to a memory leak...

5.5CVSS5.5AI score0.0001EPSS
Exploits0References8
RedHat Linux
RedHat Linuxadded 2025/02/24 12:8 a.m.2 views

jackson-databind: use of deeply nested arrays

A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer.deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices...

7.5CVSS6.8AI score0.00229EPSS
Exploits1References4
RedHat Linux
RedHat Linuxadded 2025/02/24 12:8 a.m.4 views

jackson-databind: use of deeply nested arrays

A flaw was found In FasterXML jackson-databind. This issue could allow an attacker to benefit from resource exhaustion due to the lack of a check in BeanDeserializer.deserializeFromArray to prevent the use of deeply nested arrays. An application is only vulnerable with certain customized choices...

7.5CVSS6.8AI score0.00229EPSS
Exploits1References4
Rows per page
Query Builder